[Openswan Users] Encountered Fatal Error in state STATE_XAUTH_I1
Paul Wouters
paul at xelerance.com
Fri Oct 21 17:14:39 EDT 2011
On Fri, 21 Oct 2011, tushar sharma wrote:
> my config file on left machine
>
> conn linux-vtep
> left=192.168.1.143
> leftnexthop=192.168.1.254
>
> right=192.168.101.113
> rightnexthop=192.168.101.1
>
> auto=add
> authby=rsasig
>
> leftrsasigkey="..."
> rightrsasigkey=".."
>
> rightxauthserver=yes
> leftxauthclient=yes
If you have these empty lines, then the connection definition is broken.
> i have also added line in /etc/ipsec.secrets
> username XAUTH "password"
>
> Please help me with issue where i am going wrong. Also is it possible
> to use XAUTH with x509 CA-Certifcate.?
Yes you can. Whether the other end can, I don't know.
Paul
More information about the Users
mailing list